Jay Heiser

A member of the Gartner Blog Network

Jay Heiser
Research VP
6 years at Gartner
24 years IT industry

Jay Heiser is a research vice president specializing in the areas of IT risk management and compliance, security policy and organization, forensics, and investigation. Current research areas include cloud and SaaS computing risk and control, technologies and processes for the secure sharing of data… Read Full Bio

Coverage Areas:

Everything is better with cyber on it

by Jay Heiser  |  June 14, 2013  |  1 Comment

Gartner security analysts are being bombarded with questions about CYBER security. Is this cyber reality, or cyber hype?

A few years ago, we had seriously entertained the idea of creating a sort of ‘IT Buzz Term Hype Cycle’, that would map overused prefixes across trigger, hype, disillusionment, and productivity. At the time, ‘I-‘ had reached the peak of hyperfication.  Its not hard to envision a future in which the prefix ‘cyber’ goes the way of the dodo, trapped forever in a linguistic graveyard with the suffix ‘dot com’.

In Gartner, we actually do have a concept of cybersecurity, incorporating operational technology into a broader concept of digital domain protection.  It is also fair to say that many uses of the term cybersecurity connote, if not denote, the concept of offensive digital warfare.  I want to go on the record right now and say that we specifically do NOT recommend that commercial and non-profit users of digital technology develop hackback capabilities.

We live in a constant state of verbal inflation. I started my career in computer security, lived through long painful discussions on whether or not information security was a valid term, and have watched, without actually encouraging, adjectival divergence into information assurance, cybersecurity, and cyberassurance. 

All of these terms originally arrived with the best of intentions, bringing new concepts and connotations to a complex and changing cyber world. They inevitably turn into positioning playthings, as commercial entities and government agencies use the latest buzzterms to position themselves as being leaders—in something. Its anybody’s guess whether these various terms will evolve into sharply defined meanings not just for small specialty domains, but for the IT world in general.  

For the time being, if you want to ask us about cybersecurity, we are going to ask you to provide more details.  Are you military? Are you considered critical infrastructure and are you responsible for OT?  What is it that you want to protect from whom? 

Fresh terminology doesn’t necessarily mean that the old concepts were stale.

1 Comment »

Category: risk management security     Tags: , , ,

1 response so far ↓

  • 1 Damiano Bolzoni   June 15, 2013 at 9:51 am

    I’m glad Gartner is stepping into the OT world!